Certifications, Standards and Regulations

Compliance engineered with the cloud in mind. SilverDoor maintains a set of compliance certifications and attestations to validate our technology and operations.

GDPR

The General Data Protection Regulation (GDPR) is a comprehensive European privacy law that took effect on May 25, 2018.

SilverDoor fully comply with this regulation and have implemented all controls and processes outlined in the framework such as, having expanded data privacy rights for individuals, a detailed data breach notification mechanism with enhanced security for data processing, transmission and storing.

Cyber Essentials Plus

The UK Cyber Essentials scheme was developed as part of the UK's National Cyber Security Programme and is backed by the UK industry, including the Federation of Small Businesses and the CBI. SilverDoor is credited by the certification body CREST, which has included an independent CREST security assessor thoroughly testing our cybersecurity controls and computing resources as per the outlined security criteria of the scheme.

  View certificate here.

PCI DSS

The Payment Card Industry Data Security Standards (PCI DSS) is an information security standard designed to ensure that companies processing, storing or transmitting payment card information maintain a secure environment. SilverDoor has implemented rigorous data security standards to ensure that its customer's credit card information remains safe and secure. Our processes have been vetted by Security Metrics, who have also carried out vulnerability scanning of our systems.

 View certificate here.

Disaster Recover (DR) and Business Continuity Plan (BRC)

We maintain a DR plan that supports a robust business continuity strategy for our production technology services. Our plan has been developed from industry-accepted methodologies and encompasses principles of high-availability engineering. The DR plan is constantly measured against strict regulatory and governance requirements.